Can a VPN client go out same interface on Pix 515

Answered Question
Jan 22nd, 2008

A user VPN's into a Pix and gets a x.x.x.x address via an ippool on the Pix. Once done, they will need to access information that is on the public network. Can this be done since they will go out the same interface?

I can open ports and route subnets on our core routers, but that does not seem to work.

Thanks

Dwane

I have this problem too.
0 votes
Correct Answer by husycisco about 9 years 3 days ago

Hi Dwane

You can achieve this by entering the following command

same-security-traffic permit intra-interface

Regards

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 5 (1 ratings)
Loading.
Correct Answer
husycisco Tue, 01/22/2008 - 15:19

Hi Dwane

You can achieve this by entering the following command

same-security-traffic permit intra-interface

Regards

jsoudah Tue, 01/22/2008 - 18:06

I believe it's called hairpinning and you can only do that on 7.x and above using the same-security feature.

Actions

This Discussion